~mdw / secnet / blame
| Commit | Line | Data |
|---|---|---|
| 974d0468 | 1 | Makefile.in: autodep stuff |
| 794f2398 | 2 | Make it work using the distributed install.sh (which doesn't support -D) |
| 4efd681a | 3 | |
| 8689b3a9 SE |
4 | dh.c: change format to binary from decimal string (without introducing |
| 5 | endianness problems) | |
| 2fe58dfd | 6 | |
| 794f2398 | 7 | netlink.c: test the 'allow_route' option properly. |
| c6f79b17 | 8 | |
| 794f2398 | 9 | process.c: capture output from children in sys_cmd() and log it |
| 2fe58dfd SE |
10 | |
| 11 | random.c: test | |
| 12 | ||
| 794f2398 SE |
13 | resolver.c: ought to return a list of addresses for each address; the |
| 14 | site code ought to remember them and try contacting them in turn. | |
| 15 | ||
| 2fe58dfd | 16 | rsa.c: check padding type, change format to binary from decimal string |
| 8689b3a9 | 17 | (without introducing endianness problems) |
| 2fe58dfd | 18 | |
| 2fe58dfd SE |
19 | site.c: the site_incoming() routing could be implemented much more |
| 20 | cleanly using a table. There's still quite a lot of redundancy in this | |
| baa06aeb | 21 | file. Abandon key exchanges when a bad packet is received. Modify |
| c6f79b17 SE |
22 | protocol to include version fields, as described in the NOTES |
| 23 | file. Implement keepalive mode. Make policy about when to initiate key | |
| 24 | exchanges more configurable (how many NAKs / bad reverse-transforms | |
| 25 | does it take to prompt a key exchange?) | |
| 26 | ||
| 27 | slip.c: restart userv-ipif to cope with soft routes? Restart it if it | |
| 28 | fails in use? | |
| 2fe58dfd | 29 | |
| 042a8da9 SE |
30 | transform.c: separate the transforms into multiple parts, which can |
| 31 | then be combined in the configuration file. Will allow the user to | |
| 32 | plug in different block ciphers, invent an authenticity-only mode, | |
| 33 | etc. |